Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/497EEBA2726E11EFAC436973762E951A.roa
File: 497EEBA2726E11EFAC436973762E951A.roa (raw, json)
Hash identifier: zD9jZynFsw8IZlgopzvedb35gShrWA7hZMHSr/0rFa4=
Subject key identifier: 1E:E4:1B:05:8C:7D:80:86:D2:D8:02:A8:0B:B4:CB:E9:1C:67:4C:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EE14
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/497EEBA2726E11EFAC436973762E951A.roa
Signing time: Sat 14 Sep 2024 07:52:28 +0000
ROA not before: Sat 14 Sep 2024 07:52:24 +0000
ROA not after: Sat 30 Nov 2024 07:52:24 +0000
asID: 142403
IP address blocks: 154.94.5.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60948 (0xee14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 14 07:52:24 2024 GMT
Not After : Nov 30 07:52:24 2024 GMT
Subject: CN=66e540bc-7b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:50:2f:98:aa:98:dc:e8:99:7e:38:98:14:05:
09:29:6b:c2:c0:12:6e:d5:4f:17:7e:2a:bd:c9:45:
17:25:36:70:56:91:2e:c3:6c:8a:f1:59:50:ef:8e:
4f:8e:70:4e:3c:0e:e8:95:ae:96:22:8c:9c:cc:ca:
3f:c2:85:ee:ca:e1:b2:0a:d4:7d:0a:50:4f:8a:07:
4a:73:26:72:04:bd:92:13:7e:ca:e2:27:8a:15:be:
b2:b9:e0:12:2f:46:7b:19:4c:48:3a:ab:a5:4d:e3:
34:b4:f1:7f:e5:c1:e5:11:13:d9:b1:12:20:05:f4:
b5:95:63:cb:8a:d5:ca:92:3e:2a:4f:8a:68:f7:e3:
5c:bb:34:82:e5:39:96:85:93:6c:83:c5:11:ec:88:
51:fd:dd:b7:e6:21:75:00:23:7b:81:5e:44:03:5f:
69:29:f8:db:69:d3:82:5b:06:a0:cb:4a:a5:2e:8b:
63:63:ed:79:da:f3:16:fe:9d:99:9f:a4:37:f2:c5:
e3:01:46:ba:a4:46:55:4c:28:9a:32:3a:af:cb:db:
2e:87:a9:20:b6:15:e0:63:b7:ec:54:75:4d:d2:6a:
0d:1b:16:25:d0:0e:6b:78:a2:9c:20:b8:1b:4e:62:
54:19:a7:fb:51:b2:5c:9c:fa:d6:fa:b6:2d:d9:d5:
5a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E4:1B:05:8C:7D:80:86:D2:D8:02:A8:0B:B4:CB:E9:1C:67:4C:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/497EEBA2726E11EFAC436973762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.5.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:a1:1b:50:e2:cf:3d:82:29:ac:fd:0a:66:ee:ec:95:9b:f9:
01:db:96:ec:d0:7b:bf:9a:87:b8:a7:03:2d:1d:6d:c1:4a:d9:
26:4b:c3:43:60:fb:a1:38:06:6e:4c:71:2b:30:32:64:3b:1e:
e2:59:36:42:df:71:6f:d0:5d:30:12:7e:e7:35:eb:b0:e5:d3:
4a:d0:49:68:a7:fc:27:99:1d:06:d0:34:01:d5:0e:c5:66:61:
f6:99:c0:91:1a:44:a3:cb:c4:69:82:27:62:2b:5c:11:e6:8e:
d2:72:96:a3:38:e4:63:a2:0a:29:2c:cd:31:27:b3:b3:9b:2d:
88:c4:9d:ea:ed:92:40:99:6b:6d:0b:66:63:bb:c1:0f:5a:6b:
2b:2e:f5:d4:6f:fc:86:3f:c8:66:50:39:8e:9f:72:db:c0:8d:
47:47:65:7f:87:80:e5:9f:22:a7:ca:94:f9:86:56:5b:38:a2:
af:b4:0a:5e:f2:32:ad:51:32:a5:54:9b:eb:a2:1d:01:90:ef:
2f:30:8c:4e:03:3d:30:4b:1e:5c:e8:27:89:56:68:4c:5a:b2:
c7:8d:91:61:b3:05:8b:6e:73:69:32:88:2f:1e:cc:f2:23:71:
58:a9:fc:c4:5e:24:20:d4:ce:e1:44:b1:ad:a2:b4:6f:72:04:
ca:02:4b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:05 2024 by rpki-client on console-fra.rpki-client.org